Home / malware TrojanDownloader:ASX/Wimad.CJ
First posted on 21 March 2019.
Source: MicrosoftAliases :
There are no other names known for TrojanDownloader:ASX/Wimad.CJ.
Explanation :
TrojanDownloader:ASX/Wimad.CJ is a detection for malicious Windows media files that encourage users to download and execute arbitrary files on an affected machine. When opened with Windows Media Player, these malicious files open a particular URL in a Web browser. InstallationTrojanDownloader:ASX/Wimad.CJ is a malicious Advanced Streaming Format (ASF) file, which when opened by Windows Media Player, urges a user to download and execute an arbitrary file. In the wild, files detected as TrojanDownloader:ASX/Wimad.CJ have been observed to be distributed with file extensions such as .MP3, .ASF, .WMA, and .ASX. The file names used have been varied and enticing. Payload Redirects Web trafficAt the time of writing, ASX/Wimad.CJ attempts to open a page on the www.realcodec.comdomain. Affected users may be directed to other sites or to download arbitrary files. Microsoft strongly suggest that users avoid downloading and executing any files when prompted by Windows Media Player upon opening streaming format files. Analysis by Patrik Vicol
Last update 21 March 2019